CVE-2016-10108

CRITICAL EXPLOITED NUCLEI

Western Digital MyCloud unauthenticated command injection

Title source: metasploit

Exploitation Summary

CVE-2016-10108 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Erik Wynter, Steven Campbell, Remco Vermeulen, including a Metasploit module exploits/linux/http/wd_mycloud_unauthenticated_cmd_injection. A Nuclei detection template is also available.

AI-analyzed exploit summary This Metasploit module exploits an authentication bypass (CVE-2018-17153) and command injection (CVE-2016-10108) in Western Digital MyCloud to achieve unauthenticated remote code execution as root. It first checks for vulnerability by executing an echo command and then delivers the payload if the target is vulnerable.

Description

Unauthenticated Remote Command injection as root occurs in the Western Digital MyCloud NAS 2.11.142 /web/google_analytics.php URL via a modified arg parameter in the POST data.

Exploits (1)

metasploit WORKING POC EXCELLENT

by Erik Wynter, Steven Campbell, Remco Vermeulen · rubypoclinux

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/wd_mycloud_unauthenticated_cmd_injection.rb

View Code ZIP pw:eip

This Metasploit module exploits an authentication bypass (CVE-2018-17153) and command injection (CVE-2016-10108) in Western Digital MyCloud to achieve unauthenticated remote code execution as root. It first checks for vulnerability by executing an echo command and then delivers the payload if the target is vulnerable.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Western Digital MyCloud before 2.30.196

No auth needed

Prerequisites: Network access to the target device · Target device must be running a vulnerable version of Western Digital MyCloud

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Western Digital MyCloud NAS - Command Injection

CRITICALby DhiyaneshDk

Shodan: http.favicon.hash:-1074357885

FOFA: icon_hash=-1074357885

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry

http://www.securityfocus.com/bid/95200

Exploit, Third Party Advisory

https://www.stevencampbell.info/2016/12/command-injection-in-western-digital-mycloud-nas/

Exploit, Third Party Advisory

http://packetstormsecurity.com/files/173802/Western-Digital-MyCloud-Unauthenticated-Command-Injection.html

Scores

CVSS v3 9.8

EPSS 0.9217

EPSS Percentile 99.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2024-02-07

CWE

CWE-77

Status published

Products (1)

western_digital/mycloud_nas 2.11.142

Published Jan 03, 2017

Tracked Since Feb 18, 2026